I'm clear this has been asked a gazillion times; feels like I've now read half the posts.
For incoming mail that matches with high-confidence a known bot/mass-mailer restriction, is it 'best' to DISCARD or REJECT? I still can't convince myself of a clear answer, but am leaning to DISCARD. Mainly because of this very old thread, https://groups.google.com/d/msg/mailing.postfix.users/TuzK5EisyUk/06U5BDBf2Q8J where Viktor advised "Use DISCARD when you have a precise signature for a mass-mailer worm." IIUC: using REJECT does NOT accept the whole message, and sends a bounce using DISCARD **DOES** accept the whole message before trashing it, and stays quiet about it with no bounce. It seems that NO BOUNCE (i.e., DISCARD) is a good thing for bots. But, for bots that are sending nasty -- and sometimes large -- attachment payloads, is is wise/safe to let that attachment etc. onto my server at all? even if it's gonna get trashed? So, for the mildly-still-confused: which should we use and when? I'm more interested in the right solution for real-world practicality than strict adherence to an RFC ... Jason
